*.kpn.lightning.codex-int.hbo.com
Issued by Amazon
About this certificate
This digital certificate with serial number 0b:0e:71:04:20:2c:01:ee:9e:e5:c2:ce:4f:8a:d4:57 was issued on by Amazon.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.kpn.lightning.codex-int.hbo.com
Amazon
Organization:
Amazon
Organization unit: Server CA 1B
Organization unit: Server CA 1B
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:0e:71:04:20:2c:01:ee:9e:e5:c2:ce:4f:8a:d4:57Serial Number (int): 14696492348808147059043991139675460695
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 6c:0a:5a:20:fd:de:62:07:7b:e3:b0:2c:22:bd:09:e0:e3:f1:79:75
AuthorityKeyId: 59:a4:66:06:52:a0:7b:95:92:3c:a3:94:07:27:96:74:5b:f9:3d:d0
Fingerprint (sha1): 45:a5:53:d6:fc:43:59:35:f4:fe:2c:70:11:6b:f5:e3:84:93:7c:21
Fingerprint (sha256): 01:ef:fd:53:15:4b:a0:e3:16:d8:76:4b:3d:20:f2:54:b1:83:9b:e3:c7:6e:12:44:4b:1a:bb:70:f1:8c:fd:fa
Issuing Certificate URL: http://crt.sca1b.amazontrust.com/sca1b.crt
Revocation information
OCSP Server: http://ocsp.sca1b.amazontrust.comCRL Distribution Point: http://crl.sca1b.amazontrust.com/sca1b-1.crl
Check the revocation status for certificate *.kpn.lightning.codex-int.hbo.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.kpn.lightning.codex-int.hbo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.kpn.lightning.codex-int.hbo.com
kpn.lightning.codex-int.hbo.com
kpn.lightning.codex-int.hbo.com
Other certificates including the domain name hbo.com
(limited to 100 certificates)
dash.pro42.akm.cdn.hbogo.com
enseo-stg.play.codex-int.hbo.com
commerce-emea.api.hbo.com
cyberducktest.microsites.hbo.com
customer-test.ssl.fastly.net
lightning-web.play.codex-int.hbo.com
secure06.lithium.com
test-cert.sandbox.wmdtc.tech
concierge.api.hbo.com
turner.com
www.shop.hbo.com
jira.dp.hbo.com
dmx-web.play.codex-int.hbo.com
origin.mvpdstreaming.hbo.com
secure06.lithium.com
testing.dp.hbo.com
*.lightning-web.apps-dev.codex-int.hbo.com
testing.dp.hbo.com
*.kpn.lightning.codex-int.hbo.com
device-update.api.hbo.com
kpn.play.codex-int.hbo.com
vip.hbo.com
o365.hbo.com
ssodev.homeboxoffice.com
comet-eu-1-eu-central-1.api.hbo.com
dns-vetting1k.map.fastly.net
*.dp.hbo.com
*.dev.security.hbo.com
castle-1-us-west-2-int.staging.staging-api.hbo.com
u2.shared.global.fastly.net
user-comet-1-snp-us-west-2.development.hurley.hbo.com
groot-1-us-east-1-int.latam.api.hbo.com
jenkins.k8s.hurley.hbo.com
youtrack.hbo.com
testing.dp.hbo.com
privacy-processor-latam-1-us-east-1.api.hbo.com
dns-vetting1k.map.fastly.net
*.dev.security.hbo.com
mvpd-authn-manager-eu-1-eu-central-1.api.hbo.com
customer-test.ssl.fastly.net
hbo.map.fastly.net
secure02.stage.lithium.com
b2bmicrositesadmin.hbo.com
u2.shared.global.fastly.net
netbox.development.datacenter.hbo.com
testing.dp.hbo.com
secure06.lithium.com
customer-test.ssl.fastly.net
customer-test.ssl.fastly.net
dash.pro42.akm.cdn.hbogo.com
login-us-1-us-west-2.api.hbo.com
api.hbo.com
screendiff.hadron.hbo.com
alb-redirector-production-us-east-1.api.hbo.com
profiles-eu-1-eu-central-1.api.hbo.com
hurley.hbo.com
mongo.prod-espv4.hbo.com
dns-vetting1k.map.fastly.net
f2.shared.global.fastly.net
concierge.api.hbo.com
hbo.map.fastly.net
fromthevault.hbo.com
drm-proxy-us-1-us-east-1-1.api.hbo.com
jenkins-pi3.mgmt.wmdtc.tech
cdn.hbo.com
profiles-us-1-us-east-2.api.hbo.com
messaging-api-test.micro.hbo.com
alertmanager.staging.datacenter.hbo.com
art-gallery.akm.cdn.hbo.com
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
smatrix.hbo.com
u2.shared.global.fastly.net
andreas.caps.codex-int.hbo.com
vizio.play.codex-int.hbo.com
lightning.play.codex-int.hbo.com
testing.dp.hbo.com
dns-vetting1k.map.fastly.net
www.fromthevault.hbo.com
hotd-character-guide.micro.hbo.com
shop.hbo.com
testing.dp.hbo.com
drm-proxy-latam-1-us-east-1.api.hbo.com
dns-vetting1k.map.fastly.net
customer-test.ssl.fastly.net
customer-test.ssl.fastly.net
u2.shared.global.fastly.net
profiles-1-us-east-1-int.latam.api.hbo.com
customer-test.ssl.fastly.net
customer-test.ssl.fastly.net
jenkins.k8s.hurley.hbo.com
customer-test.ssl.fastly.net
splunk.hbo.com
shop.hbo.com
www.fromthevault.hbo.com
eks-service-alb-tftest-1.sandbox.wmdtc.tech
concierge.api.hbo.com
secure02.stage.lithium.com
shared-ingress-public-prod-us-1-us-east-1.api.hbo.com
weichi.caps.codex-int.hbo.com
enseo-stg.play.codex-int.hbo.com
commerce-emea.api.hbo.com
cyberducktest.microsites.hbo.com
customer-test.ssl.fastly.net
lightning-web.play.codex-int.hbo.com
secure06.lithium.com
test-cert.sandbox.wmdtc.tech
concierge.api.hbo.com
turner.com
www.shop.hbo.com
jira.dp.hbo.com
dmx-web.play.codex-int.hbo.com
origin.mvpdstreaming.hbo.com
secure06.lithium.com
testing.dp.hbo.com
*.lightning-web.apps-dev.codex-int.hbo.com
testing.dp.hbo.com
*.kpn.lightning.codex-int.hbo.com
device-update.api.hbo.com
kpn.play.codex-int.hbo.com
vip.hbo.com
o365.hbo.com
ssodev.homeboxoffice.com
comet-eu-1-eu-central-1.api.hbo.com
dns-vetting1k.map.fastly.net
*.dp.hbo.com
*.dev.security.hbo.com
castle-1-us-west-2-int.staging.staging-api.hbo.com
u2.shared.global.fastly.net
user-comet-1-snp-us-west-2.development.hurley.hbo.com
groot-1-us-east-1-int.latam.api.hbo.com
jenkins.k8s.hurley.hbo.com
youtrack.hbo.com
testing.dp.hbo.com
privacy-processor-latam-1-us-east-1.api.hbo.com
dns-vetting1k.map.fastly.net
*.dev.security.hbo.com
mvpd-authn-manager-eu-1-eu-central-1.api.hbo.com
customer-test.ssl.fastly.net
hbo.map.fastly.net
secure02.stage.lithium.com
b2bmicrositesadmin.hbo.com
u2.shared.global.fastly.net
netbox.development.datacenter.hbo.com
testing.dp.hbo.com
secure06.lithium.com
customer-test.ssl.fastly.net
customer-test.ssl.fastly.net
dash.pro42.akm.cdn.hbogo.com
login-us-1-us-west-2.api.hbo.com
api.hbo.com
screendiff.hadron.hbo.com
alb-redirector-production-us-east-1.api.hbo.com
profiles-eu-1-eu-central-1.api.hbo.com
hurley.hbo.com
mongo.prod-espv4.hbo.com
dns-vetting1k.map.fastly.net
f2.shared.global.fastly.net
concierge.api.hbo.com
hbo.map.fastly.net
fromthevault.hbo.com
drm-proxy-us-1-us-east-1-1.api.hbo.com
jenkins-pi3.mgmt.wmdtc.tech
cdn.hbo.com
profiles-us-1-us-east-2.api.hbo.com
messaging-api-test.micro.hbo.com
alertmanager.staging.datacenter.hbo.com
art-gallery.akm.cdn.hbo.com
dns-vetting1k.map.fastly.net
dns-vetting1k.map.fastly.net
smatrix.hbo.com
u2.shared.global.fastly.net
andreas.caps.codex-int.hbo.com
vizio.play.codex-int.hbo.com
lightning.play.codex-int.hbo.com
testing.dp.hbo.com
dns-vetting1k.map.fastly.net
www.fromthevault.hbo.com
hotd-character-guide.micro.hbo.com
shop.hbo.com
testing.dp.hbo.com
drm-proxy-latam-1-us-east-1.api.hbo.com
dns-vetting1k.map.fastly.net
customer-test.ssl.fastly.net
customer-test.ssl.fastly.net
u2.shared.global.fastly.net
profiles-1-us-east-1-int.latam.api.hbo.com
customer-test.ssl.fastly.net
customer-test.ssl.fastly.net
jenkins.k8s.hurley.hbo.com
customer-test.ssl.fastly.net
splunk.hbo.com
shop.hbo.com
www.fromthevault.hbo.com
eks-service-alb-tftest-1.sandbox.wmdtc.tech
concierge.api.hbo.com
secure02.stage.lithium.com
shared-ingress-public-prod-us-1-us-east-1.api.hbo.com
weichi.caps.codex-int.hbo.com
Certificate
The complete raw certificate details for *.kpn.lightning.codex-int.hbo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIErjCCA5agAwIBAgIQCw5xBCAsAe6e5cLOT4rUVzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRUwEwYDVQQLEwxTZXJ2ZXIg Q0EgMUIxDzANBgNVBAMTBkFtYXpvbjAeFw0yMjA5MDcwMDAwMDBaFw0yMzEwMDYy MzU5NTlaMCwxKjAoBgNVBAMMISoua3BuLmxpZ2h0bmluZy5jb2RleC1pbnQuaGJv LmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOk7REznZhUeHjxX yOoItQ0C3dQ1j7lmxAUOYX367N7CAVSFjM5Wy3YW8S4fjewBBMR/hh1FwhVqsUuo j3efXFy+ePCgVxyrDnllZhtYNUa6jSUZ8QqGk6r1vcmtwOo1x8ru+b2ujSv9WGzx /N6Kwp+sFfDtz1944Hk1eby2g831Y0BHU5ebhnJOlX0X2ttF/dQdeN/n4Y1r5nqH X6NW5/8BK3yb8g20+iKXtw2R1nwbn6K1WXwQoXYvRk3Hrp0wlpF1MUZhtOZ4KOz5 KRyW/wHn7VoIwcUi6PHjck371Ylnu5iOF8UY64aRfGfc6AMPavm0OwHPo12DLLtx 3Aplh/kCAwEAAaOCAbAwggGsMB8GA1UdIwQYMBaAFFmkZgZSoHuVkjyjlAcnlnRb +T3QMB0GA1UdDgQWBBRsClog/d5iB3vjsCwivQng4/F5dTBNBgNVHREERjBEgiEq Lmtwbi5saWdodG5pbmcuY29kZXgtaW50Lmhiby5jb22CH2twbi5saWdodG5pbmcu Y29kZXgtaW50Lmhiby5jb20wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjA9BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vY3JsLnNj YTFiLmFtYXpvbnRydXN0LmNvbS9zY2ExYi0xLmNybDATBgNVHSAEDDAKMAgGBmeB DAECATB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnNj YTFiLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5zY2Ex Yi5hbWF6b250cnVzdC5jb20vc2NhMWIuY3J0MAwGA1UdEwEB/wQCMAAwEwYKKwYB BAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAFhFMkQuQHZwfkKFMa01 A3IzyLKLDpqaAf8DUuHF9V1nwlQGbTq7omSfwm3DyA33CxXuS4X2/ggVz9DpxCRi QNH9h1s1e71c/Vb73P9lNxOoIjoavL/QfFs5jpETsQY1skWTw6OLa/tjnUeHtNh8 SoP5hhlOPheO6axcIhrARja+fCuDaeBK04HqUqlVY8uKXU0O6cQR8Ra+4t/KB835 VhdTcS/oTToTwQzYgHLm7vlfRsoUF2sHjlrjKPV8KM2MrFyODIHpI2CWzVdSo3Gi sG2gfTylv/dGTfCghqicw2lUkeLs3Sy9lL23YwbvfZFTSw7LwzPlFfXBqKNhdlUb Vss= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6TtETOdmFR4ePFfI6gi1 DQLd1DWPuWbEBQ5hffrs3sIBVIWMzlbLdhbxLh+N7AEExH+GHUXCFWqxS6iPd59c XL548KBXHKsOeWVmG1g1RrqNJRnxCoaTqvW9ya3A6jXHyu75va6NK/1YbPH83orC n6wV8O3PX3jgeTV5vLaDzfVjQEdTl5uGck6VfRfa20X91B143+fhjWvmeodfo1bn /wErfJvyDbT6Ipe3DZHWfBuforVZfBChdi9GTceunTCWkXUxRmG05ngo7PkpHJb/ AeftWgjBxSLo8eNyTfvViWe7mI4XxRjrhpF8Z9zoAw9q+bQ7Ac+jXYMsu3HcCmWH +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14696492348808147059043991139675460695 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Server CA 1B' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.kpn.lightning.codex-int.hbo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29442750604663561816244808605706516901491126235672976433578675985319041812926983787685206802960582565553590411153885036848408584731072534454959550404275026130159338676772139622462164581621420616966156364728660470478342137286915011069767863706132008291088644810053571208931468338394815960428808139610000969365176841731929799939554804299495572403302840931059673007435090539357629625663964852289853358205137129417033224288796194704126955309119530490342642602260600563917147464772022704814974094444674105376067236947872450535625791999560443077953338834012192913564735295266950678328328736134188531687554441070835547867129 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 59a4660652a07b95923ca394072796745bf93dd0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c0a5a20fdde62077be3b02c22bd09e0e3f17975 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (70 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kpn.lightning.codex-int.hbo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kpn.lightning.codex-int.hbo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.sca1b.amazontrust.com/sca1b-1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sca1b.amazontrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sca1b.amazontrust.com/sca1b.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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